Jun. 4. 2008 4:41PM 



MacPherson, Kwok, Chen & He id 



No. 5689 P. 3 



IN THE CLAIMS: 

The following is a complete listing of the pending claims: 



RECEIVED 

CBMmALfiWC CENTER 

JUN 0 4 2008 



1. 



(cunently amended) A method of decrypting data stored on a storage medium using 



an encryption/deciTption core emhedded on a data storage engine, the method comprising: 

generating a pseudo-random number within the data storage engine using a seed from 

a non-volatile memory, the pseudo-random number fomiing an internal ke y, wherein the 

encryption/decryption core is configuied to maintain the internal kev privately within the 

enciyptjon/decrvption core : 

generating a combination key by combining a medium key with the internal key 

within the data storage engine; and 

within the data storage engine, decrypting a first portion of data stored on the storage 

medium with said combination key. 

2. (Previously Presented) The method of Claim 1, further comprising 
decrypting a master media key; and 
generating the medium key from the master media key. 

Claims 3 through 5 (cancelled) 

6. (Original) The method of Claim 1 wherein the combination key is genei ated by combining 
the intemal key with the medium key in an exclusive OR function. 
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7. (Previously Presented) The method of Claim 1 wherein the first poition is decrypted using 
triple DES for two keys, wherein a first key is the combination key and a second key is an 
additional internal key. 

8. (Previously Presented) The method of Claim 2 wherein the medium key comprises a 
mastered system area key, a writable system area key, and a file system infoimation key. 

9- (Previously Presented) The method of claim 8 further comprising: 
generating an additional internal key. 

10, (Previously Presented) The method of Claim 9 wherein: 
the first portion of data comprises mastered data; 

generating a combination key further comprises combining the mastered system area 
key with the internal key in an XOR function; and 

decrypting the first poilion fijither comprises using triple DES with two keys, wherein 
the first key is the combination key and the second key is the additional internal key. 

1 L (Previously Presented) The method of Claim 9 wherein: 
the first portion of data comprises uimiastered data; 

generating a first combination key further comprises combining the writable system 
area key with the internal key in an XOR function; and 

decrypting the first portion further comprises using triple DES with two keys, wherein 
the first key is the combination key and the second key is the additional internal key. 

12. (Previously Presented) The method of Claim 1 1 further comprising: 
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storing a second portion of data on said unmastered area; and 
enciypting the second poilion of data using single DES, wherein the key is the 
combination key. 

13. (Previously Presented) The method of Claim 9 further comprising: 

generating an additional combination key by combining the file system information 
key with the internal key in an XOR function; 

decrypting a file system stored on the storage medium using the internal key; 

decrypting a second portion of data using triple DES with a first and a second key, 
wherein the first key is an additional combination key and the second key is the additional 
internal key, the second portion comprising a plurality of file pointers linking a file system 
and the first portion of data. 

14. (previously presented) A method of deciypting data using a data storage engine 
comprising a data buffer and an application specific integrated circuit (ASIC), the ASIC 
having an encryption/decryption engine and a pseudo-random number generator, and the data 
being stored on a storage medium, the method comprising: 

generating a plurality of internal keys using the pseudo-random number generator and 
a seed deiived fiom a non-volatile memory; 

decrypting a master media key and a directory structure corresponding to a first 
portion of the data using at least one internal key; 

generating a plurality of medium keys fi-om the master media key; 

genei^ating a plm-ality of combination keys from the plurality of medium keys and the 
plurality of internal keys; and 
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decrypting a first portion of the data with a first combination key from the plurality of 
combination keys. 

15. (Original) The method of Claim 1 4 wherein the pseudo-random number generator 
comprises a logical feedback shift register, and wherein "generating a plurality of internal 
keys" further comprises: 

seeding the logical feedback shift register with a seed stored in the ASIC. 

16. (Original) The method of Claim 14 further comprising: 

decrypting a plurality of file pointers linking the du ectoiy structure to the data using a 
second combinatioti key, wherein the plurality of decrypted file pointers is stored within the 
ASIC, 

17. (Original) The method of Claim 14 further comprising: 

encrypting said fiist portion. 

18. (Original) The method of Claim 17 wherein: 

said decrypting a first portion of data further comprises decrypting using triple DES 
with two keys, wherein a first key is the first combination key and the second key is a first 
internal key; and 

said encrypting further comprises encrypting using single DES, wheiein the key is a 
second internal key. 

19. (Original) The method of Claim 17 further comprising 
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decrypting a second portion of the data using a second cotnbination key* wherein the 
first portion comprises mastered data and the second portion comprises data saved by a user, 

20. (previously presented) A method of enciypting data stored on a storage medium using 
an encryption/decryption core embedded on a data storage engine, the method comprising: 

generating a plurality of internal keys using a pseudo-random number generator and a 
seed from a non-volatile memory within the data storage engine; 

decrypting a mastei- media key stored on the storage medium using at least one of the 
plurality of internal keys; 

generating a plurality of medium keys from the master media key; 

generating a fust combination key by combining a medium key with an internal key; 

encrypting a fii^st portion of data using said first combination key; 

storing the first poition on the storage medium. 

21 , (Cun'ently amended) The method of Claim 20 34- wherein encrypting a first portion 
further comprises encrypting using single DES. 

Claims 22 through 25 (cancelled) 
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